(airflow-steward) branch main updated: chore(deps): bump the github-actions group with 2 updates (#476)

potiuk Thu, 11 Jun 2026 01:23:19 -0700

This is an automated email from the ASF dual-hosted git repository.

potiuk pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/airflow-steward.git



The following commit(s) were added to refs/heads/main by this push:
     new dcad07be chore(deps): bump the github-actions group with 2 updates 
(#476)
dcad07be is described below

commit dcad07be84bcef116146e6790060e924a3f74cc7
Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
AuthorDate: Thu Jun 11 10:23:06 2026 +0200

    chore(deps): bump the github-actions group with 2 updates (#476)
    
    Bumps the github-actions group with 2 updates: 
[actions/checkout](https://github.com/actions/checkout) and 
[github/codeql-action](https://github.com/github/codeql-action).
    
    
    Updates `actions/checkout` from 6.0.2 to 6.0.3
    - [Release notes](https://github.com/actions/checkout/releases)
    - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
    - 
[Commits](https://github.com/actions/checkout/compare/de0fac2e4500dabe0009e67214ff5f5447ce83dd...df4cb1c069e1874edd31b4311f1884172cec0e10)
    
    Updates `github/codeql-action` from 4.36.0 to 4.36.1
    - [Release notes](https://github.com/github/codeql-action/releases)
    - 
[Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
    - 
[Commits](https://github.com/github/codeql-action/compare/7211b7c8077ea37d8641b6271f6a365a22a5fbfa...87557b9c84dde89fdd9b10e88954ac2f4248e463)
    
    ---
    updated-dependencies:
    - dependency-name: actions/checkout
      dependency-version: 6.0.3
      dependency-type: direct:production
      update-type: version-update:semver-patch
      dependency-group: github-actions
    - dependency-name: github/codeql-action
      dependency-version: 4.36.1
      dependency-type: direct:production
      update-type: version-update:semver-patch
      dependency-group: github-actions
    ...
    
    Signed-off-by: dependabot[bot] <[email protected]>
    Co-authored-by: dependabot[bot] 
<49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/asf-allowlist-check.yml | 2 +-
 .github/workflows/codeql.yml              | 6 +++---
 .github/workflows/link-check.yml          | 2 +-
 .github/workflows/pre-commit.yml          | 2 +-
 .github/workflows/sandbox-lint.yml        | 2 +-
 .github/workflows/tests.yml               | 4 ++--
 .github/workflows/zizmor.yml              | 2 +-
 7 files changed, 10 insertions(+), 10 deletions(-)

diff --git a/.github/workflows/asf-allowlist-check.yml 
b/.github/workflows/asf-allowlist-check.yml
index 3c5c10ba..86a172fd 100644
--- a/.github/workflows/asf-allowlist-check.yml
+++ b/.github/workflows/asf-allowlist-check.yml
@@ -28,7 +28,7 @@ jobs:
   asf-allowlist-check:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd  # 
v6.0.2
+      - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10  # 
v6.0.3
         with:
           persist-credentials: false
       - uses: 
apache/infrastructure-actions/allowlist-check@4e9c961f587f72b170874b6f5cd4ac15f7f26eb8
  # main
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index 0c2ef879..39ebc809 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -53,12 +53,12 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd  # 
v6.0.2
+        uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10  # 
v6.0.3
         with:
           persist-credentials: false
 
       - name: Initialize CodeQL
-        uses: 
github/codeql-action/init@7211b7c8077ea37d8641b6271f6a365a22a5fbfa  # v4.36.0
+        uses: 
github/codeql-action/init@87557b9c84dde89fdd9b10e88954ac2f4248e463  # v4.36.1
         with:
           languages: ${{ matrix.language }}
           # Neither the Python tools (stdlib-only / single OAuth dep, no
@@ -68,6 +68,6 @@ jobs:
           queries: security-and-quality
 
       - name: Perform CodeQL analysis
-        uses: 
github/codeql-action/analyze@7211b7c8077ea37d8641b6271f6a365a22a5fbfa  # v4.36.0
+        uses: 
github/codeql-action/analyze@87557b9c84dde89fdd9b10e88954ac2f4248e463  # v4.36.1
         with:
           category: "/language:${{ matrix.language }}"
diff --git a/.github/workflows/link-check.yml b/.github/workflows/link-check.yml
index 1f94aefa..64cbb9c8 100644
--- a/.github/workflows/link-check.yml
+++ b/.github/workflows/link-check.yml
@@ -45,7 +45,7 @@ jobs:
       contents: read
       issues: write
     steps:
-      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd  # 
v6.0.2
+      - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10  # 
v6.0.3
         with:
           persist-credentials: false
 
diff --git a/.github/workflows/pre-commit.yml b/.github/workflows/pre-commit.yml
index 4d772874..62479e29 100644
--- a/.github/workflows/pre-commit.yml
+++ b/.github/workflows/pre-commit.yml
@@ -31,7 +31,7 @@ jobs:
     permissions:
       contents: read
     steps:
-      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd  # 
v6.0.2
+      - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10  # 
v6.0.3
         with:
           persist-credentials: false
       # `uv` brings its own Python and is required by both:
diff --git a/.github/workflows/sandbox-lint.yml 
b/.github/workflows/sandbox-lint.yml
index cb90525f..2828ce90 100644
--- a/.github/workflows/sandbox-lint.yml
+++ b/.github/workflows/sandbox-lint.yml
@@ -48,7 +48,7 @@ jobs:
     env:
       FORCE_COLOR: "1"
     steps:
-      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd  # 
v6.0.2
+      - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10  # 
v6.0.3
         with:
           persist-credentials: false
       - uses: astral-sh/setup-uv@08807647e7069bb48b6ef5acd8ec9567f424441b  # 
v8.1.0
diff --git a/.github/workflows/tests.yml b/.github/workflows/tests.yml
index 5c0542c0..7979a2d8 100644
--- a/.github/workflows/tests.yml
+++ b/.github/workflows/tests.yml
@@ -38,7 +38,7 @@ jobs:
     outputs:
       members: ${{ steps.list.outputs.members }}
     steps:
-      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd  # 
v6.0.2
+      - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10  # 
v6.0.3
         with:
           persist-credentials: false
       - id: list
@@ -108,7 +108,7 @@ jobs:
       FORCE_COLOR: "1"
       PY_COLORS: "1"
     steps:
-      - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd  # 
v6.0.2
+      - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10  # 
v6.0.3
         with:
           persist-credentials: false
       # uv brings its own Python and reads each project's
diff --git a/.github/workflows/zizmor.yml b/.github/workflows/zizmor.yml
index f1ecfbdd..3ea0aed8 100644
--- a/.github/workflows/zizmor.yml
+++ b/.github/workflows/zizmor.yml
@@ -35,7 +35,7 @@ jobs:
       actions: read
     steps:
       - name: "Checkout repository"
-        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd  # 
v6.0.2
+        uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10  # 
v6.0.3
         with:
           persist-credentials: false
       - name: "Run zizmor"

(airflow-steward) branch main updated: chore(deps): bump the github-actions group with 2 updates (#476)

Reply via email to